From 6f26467274a77d0838596775f3e7e6a33aad7273 Mon Sep 17 00:00:00 2001
From: Hans Nilsson <hans@erlang.org>
Date: Thu, 27 Apr 2017 14:58:47 +0200
Subject: ssh: Don't expose new rsa-sha2-* as default

---
 lib/ssh/src/ssh_transport.erl | 4 ++++
 1 file changed, 4 insertions(+)

(limited to 'lib')

diff --git a/lib/ssh/src/ssh_transport.erl b/lib/ssh/src/ssh_transport.erl
index 09b5d1ac81..7c7dda7a1e 100644
--- a/lib/ssh/src/ssh_transport.erl
+++ b/lib/ssh/src/ssh_transport.erl
@@ -92,6 +92,10 @@ default_algorithms(cipher) ->
 default_algorithms(mac) ->
     supported_algorithms(mac, same(['AEAD_AES_128_GCM',
 				    'AEAD_AES_256_GCM']));
+default_algorithms(public_key) ->
+    supported_algorithms(public_key, ['rsa-sha2-256',
+                                      'rsa-sha2-384',
+                                      'rsa-sha2-512']);
 default_algorithms(Alg) ->
     supported_algorithms(Alg, []).
 
-- 
cgit v1.2.3